Количество 4
Количество 4
CVE-2026-0397
[Unknown description]
CVE-2026-0397
When the internal webserver is enabled (default is disabled), an attacker might be able to trick an administrator logged to the dashboard into visiting a malicious website and extract information about the running configuration from the dashboard. The root cause of the issue is a misconfiguration of the Cross-Origin Resource Sharing (CORS) policy.
CVE-2026-0397
When the internal webserver is enabled (default is disabled), an attac ...
GHSA-gjv7-4r9p-7hmx
When the internal webserver is enabled (default is disabled), an attacker might be able to trick an administrator logged to the dashboard into visiting a malicious website and extract information about the running configuration from the dashboard. The root cause of the issue is a misconfiguration of the Cross-Origin Resource Sharing (CORS) policy.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-0397 [Unknown description] | CVSS3: 3.1 | 0% Низкий | 6 дней назад |
 | CVE-2026-0397 When the internal webserver is enabled (default is disabled), an attacker might be able to trick an administrator logged to the dashboard into visiting a malicious website and extract information about the running configuration from the dashboard. The root cause of the issue is a misconfiguration of the Cross-Origin Resource Sharing (CORS) policy. | CVSS3: 3.1 | 0% Низкий | 7 дней назад |
| CVE-2026-0397 When the internal webserver is enabled (default is disabled), an attac ... | CVSS3: 3.1 | 0% Низкий | 7 дней назад |
| GHSA-gjv7-4r9p-7hmx When the internal webserver is enabled (default is disabled), an attacker might be able to trick an administrator logged to the dashboard into visiting a malicious website and extract information about the running configuration from the dashboard. The root cause of the issue is a misconfiguration of the Cross-Origin Resource Sharing (CORS) policy. | CVSS3: 3.1 | 0% Низкий | 7 дней назад |
Уязвимостей на страницу